In the Linux kernel, the following vulnerability has been resolved:
drm/amd/display: fix NULL checks for adev->dm.dc in amdgpu_dm_fini() Since
‘adev->dm.dc’ in amdgpu_dm_fini() might turn out to be NULL before the call
to dc_enable_dmub_notifications(), check beforehand to ensure there will
not be a possible NULL-ptr-deref there. Also, since commit 1e88eb1b2c25
(“drm/amd/display: Drop CONFIG_DRM_AMD_DC_HDCP”) there are two separate
checks for NULL in ‘adev->dm.dc’ before dc_deinit_callbacks() and
dc_dmub_srv_destroy(). Clean up by combining them all under one ‘if’. Found
by Linux Verification Center (linuxtesting.org) with static analysis tool
SVACE.
OS | Version | Architecture | Package | Version | Filename |
---|---|---|---|---|---|
ubuntu | 18.04 | noarch | linux | < any | UNKNOWN |
ubuntu | 20.04 | noarch | linux | < any | UNKNOWN |
ubuntu | 22.04 | noarch | linux | < any | UNKNOWN |
ubuntu | 23.10 | noarch | linux | < any | UNKNOWN |
ubuntu | 24.04 | noarch | linux | < 6.8.0-35.35 | UNKNOWN |
ubuntu | 14.04 | noarch | linux | < any | UNKNOWN |
ubuntu | 16.04 | noarch | linux | < any | UNKNOWN |
ubuntu | 18.04 | noarch | linux-aws | < any | UNKNOWN |
ubuntu | 20.04 | noarch | linux-aws | < any | UNKNOWN |
ubuntu | 22.04 | noarch | linux-aws | < any | UNKNOWN |
git.kernel.org/linus/2a3cfb9a24a28da9cc13d2c525a76548865e182c (6.9-rc1)
git.kernel.org/stable/c/1c62697e4086de988b31124fb8c79c244ea05f2b
git.kernel.org/stable/c/2a3cfb9a24a28da9cc13d2c525a76548865e182c
git.kernel.org/stable/c/ca2eb375db76fd50f31afdd67d6ca4f833254957
git.kernel.org/stable/c/e040f1fbe9abae91b12b074cfc3bbb5367b79811
launchpad.net/bugs/cve/CVE-2024-27041
nvd.nist.gov/vuln/detail/CVE-2024-27041
security-tracker.debian.org/tracker/CVE-2024-27041
ubuntu.com/security/notices/USN-6816-1
ubuntu.com/security/notices/USN-6817-1
ubuntu.com/security/notices/USN-6817-2
ubuntu.com/security/notices/USN-6817-3
www.cve.org/CVERecord?id=CVE-2024-27041